Compliance Articles: Learn how to Manage Risk & Improve Efficiency

Gain better insight into the world of corporate compliance through our comprehensive database of compliance articles on business ethics, compliance management & corporate social responsibility related topics. Learn how to apply best practices in compliance management, find out if your company is in check and implement efficiency across the enterprise through our research-based articles on compliance.

March 4, 2010
Alas, Poor Peter, he only used his PDA.
By Bob Larrivee, Director & Industry Analyst for AIIM

March 3, 2010
New ITIL® Process Compliant Certification Delivers Confidence in Service Management Software
By Gerry Roy, Director of Solutions Management for Service Support, BMC Software, and Ken Turbitt, President and CEO, Service Management Consultancy (SMCG) Ltd.

March 1, 2010
Massachusetts Data Protection Law goes into effect March 1s t – and there’s no reason it shouldn’t as it really isn’t new
By Dorian Cougias

February 23, 2010
Maturity of Hackers, IT Managers and End Users
By Rick Shaw, CEO/President, Awareity

February 23, 2010
Maturity in Management and Leadership
By Rick Shaw, CEO/President, Awareity

February 23, 2010
2010 – The Year of the Insider Threat
By Katie Weaver, Awareity

February 13, 2010
Scam or Legit? Pre-Paid Debit Card with No Personal Details of Holder
By Brian Mahany

February 10, 2010
eDiscovery StraightTalk with James D. Shook, Esq.,”New Decision Orders Sanctions… But Provides Strong Guidance”
By James D. Shook, Esq,

February 6, 2010
The Ten eDiscovery Commandments Revealed
By Andrew M. Cohen, Esq,

February 5, 2010
Regulatory Compliance Costs Are Escalating
By Rick Shaw, CEO/President, Awareity

February 5, 2010
Attorney General Files First HITECH Act Suit…A New Era in Enforcement?
By Katie Weaver, Awareity

February 5, 2010
Social Media Policies…Does your Organization Have One?
By Katie Weaver, Awareity

February 5, 2010
Recruiting Insurance: Automatic EEO / OFCCP Reporting and Tracking
By Joel Passen, Newton Software

February 5, 2010
How to Choose Applicant Tracking Software to Ensure OFCCP Compliance
By Joel Passen, Newton Software

February 5, 2010
2010’s Elephant in the Human Resource Department: EEO/OFCCP Compliance
By Joel Passen, Newton Software

February 1, 2010
Security is the corner stone for any business
By Muwaffaq Mashaal, CGEIT, CISM, CISA, QDSP, CABM

February 1, 2010
Filing 250 Refund Returns For People Who Were Dead
By Brian Mahany

February 1, 2010
Tax Liens Blues? Read before you Pay!
By Brian Mahany

January 27, 2010
Perspective Matters
By Bob Larrivee, Director & Industry Analyst for AIIM

January 26, 2010
Find spreadsheets and monitor use on a continuous basis

January 15, 2010
Management Innovations and Transformations
By Rick Shaw, CEO and President of Awareity

January 12, 2010
How to Comply with PA DSS
By Sean Kramer, President and CEO of Element Payment Services

January 12, 2010
How to Comply with PCI DSS
By Sean Kramer, President and CEO of Element Payment Services

January 10, 2010
Staying Compliant: How to Do It?
By Dr. Anton Chuvakin

January 8, 2010
IT Compliance in 2010
By Sean Inman, Security & Compliance Professional

December 23, 2009
BPM: An Ethical Perspective
By Bob Larrivee, Director & Industry Analyst for AIIM

PAN Encryption: Yes, we can standardize now
By Jason Way, ISSA member, Northern Virginia, USA Chapter

December 3, 2009
False Claims of PCI Compliance
By Sean Inman, Security & Compliance Professional

December 1, 2009
Green Compliance is Profitable

November 28, 2009
>PCI and the Emerging Technologies
By Sean In man, Security & Compliance Professional

November 23, 2009
4 Steps to Managing Your Security Documents
By Sean Inman, Security & Compliance Professional

November 23, 2009
The InfoSec-Policy Based Management System (IS-PBMS)
By Sean Inman, Security & Compliance Professional

November 23, 2009
Tips for Writing Information Security Policies
By Sean Inman, Security & Compliance Professional

November 23, 2009
Compliance vs. Security
By Sean Inman, Security & Compliance Professional

November 23, 2009
Good risk management lead to compliance?
By Sean Inman, Security & Compliance Professional

November 23, 2009
Can the Card Brands STEP UP & be more than just an Enforcer?
By Sean Inman, Security & Compliance Professional

November 23, 2009
PCI Compliance Reflects a Moment in Time
By Sean Kramer, CEO, Element Payment Services

November 17, 2009
How secure is secure when it comes to corporate information?
By Bob Larrivee, Director & Industry Analyst for AIIM

November 10, 2009
Asset Recovery - Doing Things The Right Way
By Brian Mahany

November 5, 2009
IRS gets poor Grades on Identity Theft Efforts (Plus Some helpful hints for all Victims of Identity Theft)
By Brian Mahany

November 5, 2009
There is a New Sheriff in Town. Make that 50 New Sheriffs
By Brian Mahany

October 30, 2009
Does your business abide by eDiscovery and compliance requests?
By Giselle Borg Olivier

October 27, 2009
Time For Change: Are Changes to SAP Happening Once a Week, Month or Quarter??
By Selva Kumar, Vice President- SAP Practice

October 22, 2009
UBS REDUX - INTENTIONAL LEAK OR ACCIDENT?
By Brian Mahany

October 20, 2009
FBARS OR PRISON BARS?
By Brian Mahany

October 16, 2009
“RAT YOUR BOSS” OR “RATS TO RICHES,” THE NEW SEC
By Brian Mahany

October 9, 2009
Cost of PCI Compliance

October 9, 2009
PCI Compliance Deadlines
By JCB International

October 7, 2009
Reducing False Positives without Increasing Regulatory Risk
By Simon Pearson, Director of Sanctions & PEP Screening at Datanomic Ltd.

October 7, 2009
G20 Fallout Continues
By Brian Mahany

September 29, 2009
BAD BROKER, CLEAN RECORD?
By Brian Mahany

September 26, 2009
Top 5 Risks When Implementing ECM
By Bob Larrivee, Director & Industry Analyst for AIIM

September 3, 2009
Increasing Your Risk IQ
BY SUMNER BLOUNT DIRECTOR, GRC PROGRAMS

September 1, 2009
Data Protection: Why are still missing the point?
BY MATHIEU GORGE, CEO, VigiTrust

September 1, 2009
Staying Abreast of Regulations in a Global Environment
CAROLINE VITSE, MSP TechMedia

September 1, 2009
Mobility and Security: Two sides of the same coin
By MATHIEU GORGE, CEO, VigiTrust

September 1, 2009
Security During the M&A Project Lifecycle Security Considerations for Mergers & Acquisitions
By MATHIEU GORGE, CEO, VigiTrust

September 1, 2009
Head: Heading Off the Next Big Breach
Deck: Keep company information secure in a digital world
BY RYAN RHODES

August 18, 2009
The Policy Lifecycle
BY SUMNER BLOUNT, CA, Inc.

August 18, 2009
SOA: No Governance Needed. Or Is It?
By Bob Larrivee, Director & Industry Analyst for AIIM

Compensating Controls - Quick Fix at High Cost: Taking "the Easy Way Out" to Satisfy PCI DSS Requirement #3 Carries its Own Risks
BY GARY PALGON, NUBRIDGES, INC.

Sensible Security: Are Staff A Security Risk, And Are You To Blame?
BY DAVID KELLEHER, GFI SOFTWARE

A Friendly Reminder: Compliance Does Not Equal Security
BY ARI TAKANEN, CODENOMICON

Learn To Avoid Data Fiascos, Or Risk New FSA Penalties
BY ALAN CALDER, IT GOVERNANCE LIMITED

Don't Let EFS Trick You: Tips On Recovering EFS-Encrypted Data When It Gets Lost
BY VLADIMIR KATALOV, ELCOMSOFT

Forecasting Compliance Strategies for 2009 gt;
BY DOMINIQUE LEVIN, LOGLOGIC

The Problem of Silos
BY SUMNER BLOUNT, CA, Inc.

Compliance in the Cloud: Part 2 The Industry Focus
BY JIM HIETALA AND MARK WILLOUGHBY, COMPLIANCE RESEARCH GROUP

Testing Times Here's One Sure Route To Optimal Security At Minimum Cost
BY MARTIN VICKERY, SPIRENT COMMUNICATIONS

Cradle to Grave Data Recovery 2.0
BY ALASTAIR MOLYNEUX, KROLL ONTRACK

Managing the Mergers & Acquisitions IT Nightmare in the Firewall Team
BY DAVID AMNIZADE, TUFIN TECHNOLOGIES

Is Having a Security Policy in Place Really Nine-Tenths of the Law?
BY DAVID AMINZADE, TUFIN TECHNOLOGIES

Invest in Information Security to beat downturn risks
BY ALAN CALDER, IT GOVERNANCE LIMITED

IT administrators go 'rogue': minimising the threat from inside
BY MARC HUDAVERT, ACTIVIDENTITY

How PCI Leaders are Different from Other Merchants
BY DAVE TAYLOR, PCI ALLIANCE

Making the Best Use of Your Security Budget in Lean Times: Four Approaches
BY ELIZABETH IRELAND, NCIRCLE LTD

Arguments against Tokenization as Tool to Replace Card Data
BY DAVE TAYLOR, PCI ALLIANCE

Absence of Evidence Does Not Equal Innocence
BY PAUL THACKERAY, BARRACUDA NETWORKS

PCI Leadership: Compliance vs Security
BY DAVE TAYLOR, PCI ALLIANCE

The Principles of eDiscovery: Managing Electronic Content
By Bob Larrivee, Director & Industry Analyst for AIIM

PCI Lessons from the Processing Trenches
BY AARON BILLS, 3DELTA SYSTEMS, INC.

Ensure that Your IT Policies and Procedures Comply with Data Security Standards
BY MATHIEU GORGE, VIGITRUST

Extending PCI Standards to Protect All Confidential Data, Part 2
BY DAVID TAYLOR, PCI ALLIANCE ;

Virtualization: What are the Key Steps?
BY TREVOR DEARING, JUNIPER NETWORKS

Security The Human Factor
BY PAUL KEARNEY, BT GROUP

Extending PCI Standards to Protect All Confidential Data
BY DAVE TAYLOR, PCI ALLIANCE

Managing Compliance in the Cloud:
Part 1
BY JIM HIETALA AND MARK WILLOUGHBY, COMPLIANCE RESEARCH GROUP

9 Steps to Halt Data Breaches
BY ALAN CALDER, IT GOVERNANCE LIMITED

Why More Security Breaches of PCI Compliant Companies are Likely
BY DAVE TAYLOR, PCI ALLIANCE

I.T.'s Dirty Little Secret Privileged Passwords
BY MARK FULLBROOK, CYBER-ARK

Public WiFi Security Tips
BY DAVID HOBSON MD, GLOBAL SECURE SYSTEMS (GSS)

The Top Ten Data Security Myths
BY GORDON RAPKIN, PROTEGRITY

What's Really Going on with Media Labeling
BY DORIAN COUGIAS, UNITED COMPLIANCE FRAMEWORK

Does Size Matter? When it Comes to Security, the Answer is Yes
BY GREG DAY, MCAFEE INTERNATIONAL LTD.

Is Having a Security Policy in Place Really Nine-Tenths of the Law?
BY DAVID AMINZADE, TUFIN SOFTWARE LTD

Security Controls are Useless If They're Not Turned On
BY DAVE TAYLOR, PCI ALLIANCE

Virtually Compliant: How Implementing New Technology Can Make Your Company Non-Compliant
BY DAVE TAYLOR

Does Web 2.0 mean Threat 2.0?
BY ALAN CALDER, IT GOVERNANCE LIMITED

Avoid data breaches with secure file transfer
BY GARY SHOTTES, IPSWITCH FILE TRANSFER DIVISION

Predictions for 2009: what my favorite writers of the past have to say about our future
BY DORIAN COUGIAS, UNITED COMPLIANCE FRAMEWORK

Digital Fingerprints who knows where you have been?
BY GREG DAY, MCAFEE INTERNATIONAL LTD

Is PCI Worthless?
BY DAVE TAYLOR

Lies, Damned Lies and Statistics
BY CALUM MACLEOD, CYBER-ARK

What is the Essence of Governance?
BY DORIAN COUGIAS, UNITED COMPLIANCE FRAMEWORK

ISO, ITIL, & CobiT Together Foster Optimal Security Investment
BY MARY JOHNSTON TURNER, JOE OLTSIK AND JOHN MCKNIGHT

Paper Compliance vs Operational Compliance: Where is Your Company?
BY DAVE TAYLOR

Implementing IT-GRC: Five Biggest Pitfalls in IT Governance, Risk, & Compliance
BY PROFESSOR SANJAY ANAND

So Long Silos Move Beyond Silos to an Integrated, Automated Approach
BY JIM HIETALA

Assessing the ROI for IT Compliance
BY DR. VICTOR BERLIN

Are Your Stores Worth Stealing From
BY DAVE TAYLOR

A Compelling Argument for Automated Code Testing
BY PROFESSOR HOWARD A. SCHMIDT

The CORES of Compliance
BY TOM DIAMOND

Moving from Vulnerable Code to Vulnerable Service: The IT Compliance Challenge
BY RON MEYRAN

Adapt Or Be Left Behind: The Changing World of Compliance within the United States Department of Defense
BY SETH COWAND AND ROB AYOUB

From IT Compliance to IT Governance - Managing Risk Within the IT Organization
BY SANJAY ANAND

What can Government Agencies (like the SEC) Teach You About Compliance?
BY DAVID WILSON

Technical Challenges to Electronic Discovery
BY RUSSELL SHUMWAY

Categorizing a System: Why must this be so hard?
BY GARY TARBET

Compliance Training: Quick and Cost-Effective with Online Learning
BY CHARLIE GILLETTE

Minding Your Partner's Security A "Weakest Link" Scenario
BY DAVE TAYLOR

Tokenization - Part 2 How Static is Your Data?
BY DAVE TAYLOR

Tokenization - You don't Have to Protect Data You Don't Have
BY DAVE TAYLOR

Your Security Log Files Are a Discoverable Liability
BY DAVE TAYLOR

Is PCI a "mission accomplished?"
BY DAVE TAYLOR

Global Compliance Initiatives: What do They Mean for Me?
BY ROB AYOUB

The Role and Responsibility of a Chief Compliance Officer
BY GUY F. TALARICO, J.D.

Governance and The Board of Directors: Taking IT from the Backroom to the Boardroom
BY SANJAY ANAND

Information Technology Compliance Best Practices
BY ALAN BELSHAW

Information Systems Security Engineering in the Acquisition of Secure Information Systems
BY BRYAN S. CLINE

Winning Cooperation with the Magic Question "Why?"
BY MARGARET E. ANDERSON

Addressing Multiple Compliance Regulations
BY ALEX ZADROZNY

Identity Auditing: Key to Successful IT Compliance
BY TOM REPEDE

Five Core Competencies of IT Compliance Six Sigma
BY CHRISAN HERROD

Quick List

\| ARTICLES \| WEBINARS \| SIGN UP \| EVENTS \| SPONSORS \| PARTNERS \| EXPERTS \| ABOUT \| CONTACT \| PRIVACY POLICY \| UNSUBSCRIBE \|
Copyright ©2009 The Compliance Authority, Inc.